RSA signing keys (was: Re: SHA1 broken?)
Gregor Zattler
texmex at uni.de
Fri Feb 18 15:06:22 CET 2005
Hi David,
* David Shaw <dshaw at jabberwocky.com> [16. Feb. 2005]:
> In terms of GnuPG: it's up to you whether you want to switch hashes or
> not. GnuPG supports all of the SHA-2 hashes, so they are at least
> available. Be careful you don't run up against compatibility
> problems: PGP doesn't support 384 or 512, and only recently started
> supporting 256. GnuPG before 1.2.2 (2003-05-01), doesn't have any of
> the new hashes. Finally, if you have a DSA signing key (most people
> do) you are required to use either SHA-1 or RIPEMD/160. RSA signing
> keys can use any hash.
Do you advise to use RSA signing keys with gnupg 1.4.1? Will the
default key type change?
Gregor
More information about the Gnupg-users
mailing list